package com.hqyj.springbootday03.config.shiro;

import at.pollux.thymeleaf.shiro.dialect.ShiroDialect;
import org.apache.shiro.mgt.DefaultSecurityManager;
import org.apache.shiro.mgt.SecurityManager;
import org.apache.shiro.spring.config.web.autoconfigure.ShiroWebAutoConfiguration;
import org.apache.shiro.spring.security.interceptor.AuthorizationAttributeSourceAdvisor;
import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
import org.apache.shiro.web.mgt.DefaultWebSecurityManager;
import org.springframework.aop.framework.autoproxy.DefaultAdvisorAutoProxyCreator;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.boot.autoconfigure.AutoConfigureAfter;
import org.springframework.boot.autoconfigure.web.servlet.WebMvcAutoConfiguration;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.context.annotation.DependsOn;

import java.util.LinkedHashMap;
import java.util.Map;

/**
 * ShiroConfig
 */
@Configuration
//@AutoConfigureAfter({ShiroWebAutoConfiguration.class})
public class ShiroConfig {

	@Autowired
	private MyRealm myRealm;

	@Bean
	public DefaultWebSecurityManager securityManager() {
		DefaultWebSecurityManager manager = new DefaultWebSecurityManager();
		manager.setRealm(myRealm);
		return manager;
	}

	@Bean
	public ShiroFilterFactoryBean shiroFilterFactoryBean() {
		ShiroFilterFactoryBean filterFactoryBean = new ShiroFilterFactoryBean();
		filterFactoryBean.setSecurityManager(securityManager());
		filterFactoryBean.setLoginUrl("/login");
		filterFactoryBean.setSuccessUrl("/test/thymeleafTest");

		Map<String, String> filterMap = new LinkedHashMap<>();
		// 静态资源 ---- 游客
		filterMap.put("/css/**", "anon");
		filterMap.put("/images/**", "anon");
		filterMap.put("/js/**", "anon");
		filterMap.put("/vendors/**", "anon");
		filterMap.put("/favicon.ico", "anon");
		filterMap.put("/static/**", "anon");
		// 登录注册 ---- 游客
		filterMap.put("/api/login", "anon");
		filterMap.put("/api/user", "anon");
		filterMap.put("/login", "anon");
		filterMap.put("/register", "anon");
		// 公共页面
		filterMap.put("/common/**", "anon");
		// 测试接口、页面 ---- 游客
		filterMap.put("/test/**", "anon");
		// 其余 ---- 非游客
		filterMap.put("/**", "authc");
		filterFactoryBean.setFilterChainDefinitionMap(filterMap);

		return  filterFactoryBean;
	}

	/**
	 * - 注册 shiro 方言，让 thymeleaf 支持 shiro 标签
	 */
	@Bean
	public ShiroDialect shiroDialect(){
		return new ShiroDialect();
	}

	/**
	 * DefaultAdvisorAutoProxyCreator, Advisor 代理类生成器
	 */
	@Bean
	@DependsOn({"lifecycleBeanPostProcessor"})
	public DefaultAdvisorAutoProxyCreator advisorAutoProxyCreator(){
		DefaultAdvisorAutoProxyCreator advisorAutoProxyCreator = new DefaultAdvisorAutoProxyCreator();
		advisorAutoProxyCreator.setProxyTargetClass(true);
		return advisorAutoProxyCreator;
	}

	/**
	 * - 创建 AuthorizationAttributeSourceAdvisor，扫描 Shiro 注解
	 */
	@Bean
	public AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor(){
		AuthorizationAttributeSourceAdvisor authorizationAttributeSourceAdvisor = new AuthorizationAttributeSourceAdvisor();
		authorizationAttributeSourceAdvisor.setSecurityManager(securityManager());
		return authorizationAttributeSourceAdvisor;
	}


}
